The Register

Subscribe to The Register feed
Biting the hand that feeds IT — Enterprise Technology News and Analysis
Updated: 5 min 10 sec ago

At last, a use case for AI agents with sky-high ROI: Stealing crypto

Thu, 10/07/2025 - 08:27
Boffins outsmart smart contracts with evil automation

Using AI models to generate exploits for cryptocurrency contract flaws appears to be a promising business model, though not necessarily a legal one.…

Categories: News

How to trick ChatGPT into revealing Windows keys? I give up

Wed, 09/07/2025 - 23:31
No, really, those are the magic words

A clever AI bug hunter found a way to trick ChatGPT into disclosing Windows product keys, including at least one owned by Wells Fargo bank, by inviting the AI model to play a guessing game.…

Categories: News

US sanctions alleged North Korean IT sweatshop leader

Wed, 09/07/2025 - 19:06
Turns out outsourcing coders to bankroll Kim’s nukes doesn’t jibe with Uncle Sam

The US Treasury has imposed sanctions on 38-year-old Song Kum Hyok, a North Korean accused of attempting to hack the Treasury Department and posing as an IT worker to collect revenue and secret data for Pyongyang.…

Categories: News

AMD warns of new Meltdown, Spectre-like bugs affecting CPUs

Wed, 09/07/2025 - 18:17
Low-severity bugs but infosec pros claim they are a 'critical' overall threat – patch accordingly

AMD is warning users of a newly discovered form of side-channel attack affecting a broad range of its chips that could lead to information disclosure.…

Categories: News

The cloud-native imperative for effective cyber resilience

Wed, 09/07/2025 - 17:19
Modern threats demand modern defenses. Cloud-native is the new baseline

Partner content  Every organization is investing in cyberresilience tools, training, and processes. Unfortunately, only some of them will be able to successfully respond and recover from an attack. Regardless of how hard they work, many IT and security teams are constrained by legacy technology architectures that were built for the challenges of 2015, not 2025.…

Categories: News

Reframing investments in security as investments in the business

Wed, 09/07/2025 - 16:00
A little skill in business communication can help get the board on board

Partner content  Cybersecurity executives and their teams are under constant pressure and scrutiny. As the barrier to entry for attackers gets lower, organizations need to improve their defenses. As businesses get leaner, so do their security teams. There are increasingly high expectations and increasingly tougher challenges to meet them across people, processes, and platforms.…

Categories: News

Qantas begins telling some customers that mystery attackers have their home address

Wed, 09/07/2025 - 12:26
Plus: Confirms less serious data points like meal preferences also leaked

Qantas says that when cybercrooks attacked a "third party platform" used by the airline's contact center systems, they accessed the personal information and frequent flyer numbers of the "majority" of the circa 5.7 million people affected.…

Categories: News

Ingram Micro restarts orders – for some – following ransomware attack

Wed, 09/07/2025 - 10:22
Customers say things are still far from perfect as lengthy support queues hamper business dealings

Ingram Micro says it is gradually reactivating customer's ordering capabilities across the world, region by region, now its ransomware attack is thought to be "contained".…

Categories: News

Privacy campaigners pour cold water on London cops' 1,000 facial recognition arrests

Wed, 09/07/2025 - 09:30
Activists argue the resources spent on tech aren't leading to worthwhile numbers

Privacy activists are unimpressed with London's Metropolitan Police and its use of live facial recognition (LFR) to catch criminals, saying it is not effective use of taxpayer money and an overreach by government.…

Categories: News

Iranian ransomware crew reemerges, promises big bucks for attacks on US or Israel

Wed, 09/07/2025 - 07:33
Tells would-be affiliates they don't need to worry because cyberattacks don't violate a cease fire

An Iranian ransomware-as-a-service operation with ties to a government-backed cyber crew has reemerged after a nearly five-year hiatus, and is offering would-be cybercriminals cash to infect organizations in the US and Israel.…

Categories: News

Microsoft enjoys first Patch Tuesday of 2025 with no active exploits

Wed, 09/07/2025 - 00:01
Sure, 130 fixes were sent out, but bask in the security goodness

For the first time this year, Microsoft has released a Patch Tuesday bundle with no exploited security problems, although one has been made public already, and there are ten critical flaws to fix.…

Categories: News

Massive browser hijacking campaign infects 2.3M Chrome, Edge users

Tue, 08/07/2025 - 20:07
These extensions weren't malware-laced from the start, researcher says

A Chrome and Edge extension with more than 100,000 downloads that displays Google's verified badge does what it purports to do: It delivers a color picker to users. Unfortunately, it also hijacks every browser session, tracks activities across websites, and backdoors victims' web browsers, according to Koi Security researchers.…

Categories: News

The cloud-native imperative for effective cyber resilience

Tue, 08/07/2025 - 16:00
Modern threats demand modern defenses. Cloud-native is the new baseline

Partner content  Every organization is investing in cyberresilience tools, training, and processes. Unfortunately, only some of them will be able to successfully respond and recover from an attack. Regardless of how hard they work, many IT and security teams are constrained by legacy technology architectures that were built for the challenges of 2015, not 2025.…

Categories: News

SUSE launching region-locked support for the sovereignty-conscious

Tue, 08/07/2025 - 14:27
Move targets European orgs wary of cross-border data exposure

Linux veteran SUSE has unveiled a new support package aimed at customers concerned about data sovereignty.…

Categories: News

Suspected Chinese cybersnoop grounded in Italy after US tipoff

Tue, 08/07/2025 - 12:47
Zewei Xu's family reportedly bemused at arrest as extradition tabled

A man who US authorities allege is a member of Chinese state-sponsored cyberespionage outfit Silk Typhoon was arrested in Milan last week following a tipoff from the US embassy.…

Categories: News

Is your password ecosystem ready for the regulators?

Tue, 08/07/2025 - 09:00
The clipboard warriors are coming. Time to check on your password management

Sponsored feature  It's 2025, and credential theft is a thing of the past.…

Categories: News

Suspected Scattered Spider domains target everyone from manufacturers to Chipotle

Tue, 08/07/2025 - 07:28
Plus: Qantas makes contact with 'potential cyber criminal'

While the aviation industry has borne the brunt of Scattered Spider's latest round of social engineering attacks, the criminals aim to catch manufacturing and medical tech companies — and even Chipotle Mexican Grill — in tjeor web, as evidenced by hundreds of domains that security researchers say look a lot like phishing websites used by the criminal crews.…

Categories: News

CitrixBleed 2 exploits are on the loose as security researchers yell and wave their hands

Mon, 07/07/2025 - 21:31
NetScaler vendor issued a patch but otherwise, stony silence

Multiple exploits are circulating for CVE-2025-5777, a critical bug in Citrix NetScaler ADC and NetScaler Gateway dubbed CitrixBleed 2, and security analysts are warning a "significant portion" of users still haven't patched.…

Categories: News

Phishing platforms, infostealers blamed as identity attacks soar

Mon, 07/07/2025 - 13:00
Get your creds in order or risk BEC, ransomware attacks, orgs warned

A rise in advanced phishing kits and info-stealing malware are to blame for a 156 percent jump in cyberattacks targeting user logins, say researchers.…

Categories: News

Stalkerware firm gets scooped by SQL-slinging security snoop

Sun, 06/07/2025 - 21:10
Also, Swiss ransomware posture looks like its cheese, the CVE Program wants YOU, more sus checks and more

Infosec In Brief  A security researcher looking at samples of stalkerware discovered an SQL vulnerability that allowed him to steal a database of 62,000 user accounts. …

Categories: News

Pages